Privacy Policy

Last updated: 2 July 2026

Introduction

The Mind-Body Healing Project ("we", "our" or "us") is committed to protecting your privacy and handling your personal information responsibly, fairly and transparently.

This Privacy Policy explains what information we collect, why we collect it, how we use it, and your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who we are

The Mind-Body Healing Project is a UK charitable organisation dedicated to improving wellbeing through accessible mind-body approaches, education, community programmes and research.

If you have any questions about this Privacy Policy or how we use your personal information, please contact:

Email: hello@themindbodyhealingproject.org

Information we collect

Depending on how you interact with us, we may collect:

Information you provide directly

This may include:

  • your name

  • email address

  • telephone number

  • organisation (where applicable)

  • information included in messages or enquiries

  • information you provide when registering for workshops or programmes

  • newsletter subscription preferences

  • survey responses and feedback

  • information you voluntarily provide as part of research or evaluation activities.

Information collected automatically

When you visit our website, we may collect information such as:

  • IP address

  • browser type

  • device information

  • pages visited

  • time spent on our website

  • referring website

  • cookies and similar technologies.

How we use your information

We use your information to:

  • respond to enquiries

  • provide our services and wellbeing programmes

  • register participants for workshops and events

  • send newsletters and updates where you have chosen to receive them

  • improve our website and services

  • understand how our programmes are working

  • monitor and evaluate the impact of our work

  • fulfil our legal and regulatory obligations

  • protect the security of our website and systems.

Research and evaluation

One of our charitable aims is to build evidence for effective, accessible approaches to improving wellbeing. Where you choose to participate in research or programme evaluation:

  • participation will always be voluntary

  • you will be provided with clear information before taking part

  • consent will be requested where appropriate

  • any additional information about how your data will be used will be explained separately

  • where possible, findings will be reported anonymously or in aggregated form.

Our lawful basis for processing

Under UK GDPR, we rely on one or more of the following lawful bases:

  • Consent

  • Legitimate interests

  • Performance of a contract

  • Compliance with legal obligations.

Where we process special category personal data, including health or wellbeing information, we will only do so where a valid legal basis and additional condition under UK data protection law applies.

 

Who we share your information with

We do not sell your personal information.

Where necessary, we may share information with trusted service providers who help us operate our organisation, such as providers of:

  • website hosting

  • email services

  • online meeting platforms

  • survey software

  • secure cloud storage

  • customer relationship management systems

  • website analytics.

These organisations process information only on our behalf and are required to keep it secure.

We may also disclose information where required by law or to protect legal rights.

International transfers

Some of our service providers may process information outside the UK. Where this happens, we ensure appropriate safeguards are in place in accordance with UK data protection law.

Data security

We take appropriate technical and organisational measures to protect personal information from unauthorised access, loss, misuse or disclosure. While no online system can ever be completely secure, we continually seek to use reputable providers and good information security practices.

How long we keep your information

We only keep personal information for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting and reporting requirements. Retention periods may vary depending on the type of information involved.

Your rights

You have the right to:

  • access your personal information

  • request correction of inaccurate information

  • request deletion of your information in certain circumstances

  • object to certain types of processing

  • request restriction of processing

  • withdraw consent where processing is based on consent

  • request a copy of your personal information in a portable format where applicable.

To exercise any of these rights, please contact us using the details above.

Marketing communications

If you subscribe to our newsletter or updates, we will only send communications where you have requested them or where permitted by law. You can unsubscribe at any time by using the unsubscribe link in our emails or by contacting us.

Cookies

Our website uses cookies and similar technologies to help it function, understand how visitors use the site and improve the user experience. Where required, we will ask for your consent before placing non-essential cookies on your device.

Links to other websites

Our website may contain links to external websites. We are not responsible for the privacy practices of those websites and encourage you to read their own privacy policies.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our activities, legal requirements or best practice. The latest version will always be available on our website.

Complaints

If you are unhappy with how we have handled your personal information, please contact us first so that we can try to resolve the issue.

You also have the right to complain to the Information Commissioner's Office, the UK's independent regulator for data protection.